SID-500

Home » Security

Category Archives: Security

The new netstat: Playing with Get-NetTCPConnection

For some reason, I don’t like netstat. Never did. Fortunately PowerShell provides a similar command to netstat: Get-NetTCPConnection. Let’s discover the options of this command in form of this blog post.

(more…)

Active Directory: Send Messages to all currently logged on Users (msg.exe)

Do you remember the net send command? And do you remember the security concerns? Last week I played with msg.exe. Msg is the “new” net send. I tried to send a message to all users and computers in my domain. Why? I wanted to instruct all users to close all open programs. And now I want to keep and share this knowledge in form of this blog post.

(more…)

PowerShell: Creating Login Banners (Logon Screen)

One of the first things you learn in cisco lessons is how to create login banners. A banner is a message shown to a user who is using the device. In this article I am going to configure login banners for Windows Server and Client Systems by using Windows PowerShell.

(more…)

Windows Server 2016: Configuring Time based Group Membership with PowerShell

With Windows Server 2016 there is a new Feature called Privileged Access Management Feature. This feature is only available in Active Directory Environments running Windows Server 2016 Forest Mode. This guide shows step-by-step how to set up Time Based Group Membership with Windows PowerShell.

(more…)

PowerShell: Configuring Fine Grained Password Policies (PSO)

Since Windows Server 2008, Domain Administrators are able to configure password polices per user and per group. This article shows how to set up password policies (Password Setting Objects) with PowerShell.

(more…)

Starting Google Chrome in Kiosk Mode

Today I had the task of figuring out how Goolge Chrome can be started in Kiosk Mode. And now, I want to keep this knowledge in form of this blog post. First of all: What is Kiosk Mode? Kiosk mode is a special mode for computer programs that restrict the user right’s. You can configure it for the operating system or for applications only. Kiosk Mode is often used for public institutions and public events.

(more…)

Securing Active Directory: Who can add computers to the domain? Only the domain admin?

“Only Domain administrators can add computers to the domain.” I can’t count how often I have heared these words. But when installing a new domain, a counter is configured and this counter allows each domain user to add up to 10 computers to the domain. This is the default setting. The setting can be changed and must be considered in the IT security concept.

(more…)

DDOS: DNS Amplification Angriffe

Der DNS Dienst ist in Segen. Ohne DNS müssten sich Menschen IP-Adressen merken, oder altmodisch Hosts Dateien bearbeiten. DNS bietet also Komfort. Aber leider sind Komfort und Sicherheit keine Freunde. Das bekamen am 15.02.2006 einige DNS-Stammserver (Root-Server) zu spüren. Und zwar durch einen DNS Amplification Attack (DNS-Verstärkungsangriff).

(more…)